SHOW Signed

net.rim.device.api.crypto
Class ECMQVKeyAgreement

java.lang.Object
  |
  +--net.rim.device.api.crypto.ECMQVKeyAgreement

public final class ECMQVKeyAgreement

extends Object

Implements the key agreement scheme developed by Menezes, Qu, and Vanstone using elliptic curves (ECMQV).

Elliptic Curve cryptography is defined in various standards including P1363 and ANSI X9.62. ECMQV is defined in P1363 ( we implemented the version from the draft 13 ( "d13" ) document ).

Category:

Signed: This element is only accessible by signed clients. If you intend to use this element, please contact RIM to establish the necessary agreements that will allow you to have your COD files signed. Signing is only required for use on the device, development under the JDE can occur without signing the CODs.

Method Summary

static byte[]

generateSharedSecret(ECPrivateKey localStaticPrivateKey, ECKeyPair localEphemeralKeyPair, ECPublicKey remoteStaticPublicKey, ECPublicKey remoteEphemeralPublicKey, boolean useCofactor) Generates the shared secret using the elliptic curve key agreement developed by Menezes, Qu, and Vanstone with the option of the cofactor of the elliptic curve being used in the shared secret calculations.

Methods inherited from class java.lang.Object

equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Method Detail

generateSharedSecret

public static byte[] generateSharedSecret(ECPrivateKey localStaticPrivateKey,
                                          ECKeyPair localEphemeralKeyPair,
                                          ECPublicKey remoteStaticPublicKey,
                                          ECPublicKey remoteEphemeralPublicKey,
                                          boolean useCofactor)
                                   throws InvalidCryptoSystemException,
                                          CryptoTokenException,
                                          CryptoUnsupportedOperationException

Generates the shared secret using the elliptic curve key agreement developed by Menezes, Qu, and Vanstone with the option of the cofactor of the elliptic curve being used in the shared secret calculations. The cofactor is used to prevent small subgroup attacks. Note that using the cofactor is the defacto standard for elliptic curve operations.of the cofactor of the elliptic curve being factored into the shared secret calculations.

Parameters:

localStaticPrivateKey - The local static private key to use.

localEphemeralKeyPair - The local ephemeral key pair to use.

remoteStaticPublicKey - The remote static public key to use.

remoteEphemeralPublicKey - The remote ephemeral public key to use.

useCofactor - If this true, a the elliptic curve's cofactor is used in the calculations. If false, the cofactor is not used. Note, setting this value to TRUE is the most common usage.

Returns:

A byte array containing the shared secret data. Note that the value returned is the raw shared secret, which technically is an element of the finite field that the elliptic curve is defined over. The caller can then take this byte array and feed it into any PseudoRandomSource to create a symmetric key, etc.

Throws:

InvalidCryptoSystemException - Thrown if the local and remote crypto systems are different.

CryptoTokenException - Thrown if an error occurs with the crypto token or the crypto token is invalid.

CryptoUnsupportedOperationException - Thrown if a call is made to an unsupported operation.

Since:

JDE 3.6

Category:

Signed: This element is only accessible by signed clients. If you intend to use this element, please contact RIM to establish the necessary agreements that will allow you to have your COD files signed. Signing is only required for use on the device, development under the JDE can occur without signing the CODs.